- +353 (0) 1 2650010
- [email protected]
- 24 / 7 IT Support
The General data protection regulation or GDPR legislation emphasises transparency, security and accountability by data controllers and processors, while at the same time standardising and strengthening the right of European citizens to data privacy.
Data Controller – Individual or Group that decides how data will be stored, collected or processed.
Data Processor – Individual or group that processes data on behalf of a data controller (Collecting, altering, transferring, using, storing data Etc)
The GDPR gives data protection authorities more robust powers to tackle non-compliance, including significant administrative fining capabilities of up to €20,000,000 (or 4% of total annual global turnover, whichever is greater) for the most serious infringements.
The GDPR also makes it considerably easier for individuals to bring private claims against companies when their data privacy has been infringed and allows data subjects who have suffered non-material damage as a result of an infringement to sue for compensation.
Rights for individuals under the GDPR include:
Every organisation is Accountable for the personal data they hold and ensuring that this data is secure.
Accountability is at the centre of all this: of getting it right today, getting it right in May 2018, and getting it right beyond that.
Elizabeth Denham
The General data protection regulation or GDPR legislation emphasises transparency, security and accountability by data controllers and processors, while at the same time standardising and strengthening the right of European citizens to data privacy.
The GDPR gives data protection authorities more robust powers to tackle non-compliance, including significant administrative fining capabilities of up to €20,000,000 (or 4% of total annual global turnover, whichever is greater) for the most serious infringements.
The GDPR also makes it considerably easier for individuals to bring private claims against companies when their data privacy has been infringed and allows data subjects who have suffered non-material damage as a result of an infringement to sue for compensation.
Rights for individuals under the GDPR include:
Timeframe given to report a data breach, including associated details.
7 core citizen rights afforded under GDPR, including the right to rapid notification of breach, explicit consent, the right to erasure, etc.
Potential fines can range from 2-4% of a company’s global revenue.
Requirements for GDPR span governance, policies, processes, and technology.
A common misconception is that just because you don’t hold or transact with members of the public that you do not hold any personal data. Essentially every business holds data on its own staff and this data is considered personal data as such needs to be protected.
There is no one size fits all solution for GDPR compliance. Different measures will need to be taken to ensure your organisation is compliant. The first steps begin with a GDPR readiness audit after which our security team will be able to advise you on whats next and the scope of works that need to be completed.
A common misconception is that just because you don’t hold or transact with members of the public that you do not hold any personal data. Essentially every business holds data on its own staff and this data is considered personal data as such needs to be protected.
Data Controller – individual or Group that decides how data will be stored, collected or processed.
Data Processor – Individual or group that processes data on behalf of a data controller (Collecting, altering, transferring, using, storing data Etc)
The announcement of an agreement to finalize GDPR was made in December 2015 and following a vote by the EU parliament, the compliance deadline for GDPR was set for May 25th 2018.
There is an ongoing requirement for all businesses to maintain their GDPR compliance into perpetuity. Unfortunately, the regulation is not just a point in time where businesses must be compliant but it sets out the terms under which organisations must remain compliant. The regulation also applies to all data collected in the past, present and future.
A common misconception from business to business organisations is that they do not hold any personal information. Organisations must also consider the internal data they hold on employee’s and that this data falls within the personal data classification and as such must be protected.
GDPR provides exceptions based on whether appropriate security controls are deployed within the organizations.
For example a breached organization that has rendered the data unintelligible through encryption to any person who is not authorized to access the data, is not mandated to notify the affected record owners.
The chances of being fined are also reduced if the organization is able to demonstrate a “ Secure Breach” has taken place.
Customers reviews
need convincing?
For over a decade, Automate Technology has been helping companies with all aspects of their IT, bringing real added-value.
Over the years we have developed a team that has deep routes in all aspects of IT – from day-to-day support, networking, cloud computing, social media, and strategic consulting.
With years of experience, real IT geniuses and digital experts on hand, we are what your business needs.
A niche managed services provider for the modern business. Dedicated to providing IT support in Dublin and surrounding areas.
Not a service provider, a service partner.